Enroll in or hire us to teach our 50412: Implementing Active Directory Federation Services 2.0 class in Harrisburg, Pennsylvania by calling us @303.377.6176. Like all HSG
classes, 50412: Implementing Active Directory Federation Services 2.0 may be offered either onsite or via instructor led virtual training. Consider looking at our public training schedule to see if it
is scheduled: Public Training Classes

Provided there are enough attendees, 50412: Implementing Active Directory Federation Services 2.0 may be taught at one of our local training facilities.

Answers to Popular Questions:

Course Description

This four-day instructor-ledcourse provides students with the knowledge
and skills to install and configure Active Directory Federation Services
2.0 (AD FS). The course focuses on terminology, user interfaces, and
common configuration scenarios for AD FS. Students will learn how to
design AD FS environments and supporting technology such as a Public Key
Infrastructure. Students will also learn how to design AD FS for
security and high availability.

Course Length: 4 Days
Course Tuition: $1590 (US)

Prerequisites

This course is intended for Windows IT professionals who want to become
Active Directory Federation Services (AD FS) enterprise administrators,
and move into the role of designing AD FS environments.

Course Outline

Module 1: Introducing Claims-based Identity
This module explains how to recognize AD FS terminology and common use cases for AD FS 2.0.

After completing this module, students will be able to:
•Discuss and describe the Seven Laws of Identity, and how they pertain to managing identities for users and applications.
•Examine existing solutions for managing identities.
•Describe the benefits of the Claims-based Identity model.
•Discuss the evolution of Active Directory Federation Services (AD FS).
•Describe common use cases for AD FS.
•Discuss common terminology used when working with AD FS and Claims-based Identity.

After completing this module, students will be able to:
•Identify the key Windows components required for AD FS.
•Describe the key characteristics of a Directory Service.
•Describe the role Active Directory and AD LDS perform in an AD FS deployment.
•Describe what is meant by the terms Web Services, WS-*, and Security Assertion Markup Language (SAML).
•Recognize the role of IIS in a successful AD FS deployment.

Module 3: Public Key Infrastructure (PKI)
This module explains how to install and configure the Public Key Infrastructure (PKI) requirements necessary to deploy AD FS 2.0.

•Installing and Configuring an Enterprise Root CA in the A. Datum Active Directory
•Configure an SSL Certificate for the Web Server
•Import Certificates in the Necessary Locations
After completing this module, students will be able to:
•Describe the concepts of a Public Key Infrastructure (PKI).
•Define and discuss the basics of PKI.
•Describe symmetric key and public key cryptography.
•Discuss options for PKI design.
•Describe the steps needed to install and configure Certificate Services.

Module 4: AD FS 2.0 Components
This module explains how to install and configure the Windows Identity Foundation (WIF), and how to install the AD FS 2.0 service in the federation server role.

After completing this module, students will be able to:
•Describe the role of the federation server in an AD FS 2.0 installation.
•Understand the importance of claims, claim types, endpoints, and attribute stores for a successful AD FS implementation.
•Discuss best practices for securing an AD FS implementation, including the role of Public Key Infrastructure (PKI) certificates in securing the authentication and communication process.
•Describe the role of the Federation Server Proxy.
•Describe the methods available to administer an AD FS server.
•Understand the role of the Windows Identity Foundation (WIF) in creating claims-based applications.

Module 5: Claims-based Authentication in a Single Organization
This module explains how to design and deploy AD FS 2.0 to provide claims-based authentication within a single organization.

Lessons
•Preparing for AD FS in a Single Organization
•AD FS Within a Single Organization
•Understanding Claims and Claim Types
•Claim Rules and Claim Rule Templates
•Creating Claim Rules from Templates
•Configuring AD FS in a Single Organization

Lab : Configuring Claims-based Authentication in a Single Organization

After completing this module, students will be able to:
•Define the certificate requirements for AD FS in a single organization.
•Discuss PKI certificate management for AD FS.

Module 6: Claims-based Authentication in a Business-to-Business Federation
This module explains how to design and deploy AD FS 2.0 to provide claims-based authentication in a business-to-business federation scenario.

After completing this module, students will be able to:
•Deploy AD FS 2.0 in a business-to-business federation.
•Configure an AD FS Claims Provider Trust.
•Describe and configure the Home Realm Discovery process.
•Manage AD FS Claims and Federation Trust relationships across organizations.

Module 7: Advanced AD FS Deployment Scenarios
This module explains how to deploy an AD FS server as a federation server proxy. It also explains how to design an AD FS deployment to create a high-availability configuration, and how to configure AD FS 2.0 to achieve interoperability with SAML 2.0-compatible products and applications.

After completing this module, students will be able to:
•Configure the AD FS 2.0 server in the Federation Server Proxy role.
•Configure AD FS 2.0 for redundancy and high availability.
•Deploy AD FS 2.0 to provide interoperability with SAML 2.0-compliant federation partners.

After completing this module, students will be able to:
•Describe the AD FS 2.0 Claims Pipeline and Claims Engine processes.
•Create and configure custom claim rules using the AD FS 2.0 claim rule language.
This module explains how to audit, troubleshoot, and trace AD FS 2.0 components and claims-aware applications, at both the server and client level.